NVD Vulnerability Detail

Search Exploit, PoC

Exploit DB

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2024-41673

Summary	Decidim is a participatory democracy framework. The version control feature used in resources is subject to potential XSS attack through a malformed URL. This vulnerability is fixed in 0.27.8.
Publication Date	Oct. 2, 2024, 12:15 a.m.
Registration Date	Oct. 2, 2024, noon
Last Update	Oct. 4, 2024, 10:51 p.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://github.com/decidim/decidim/security/advisories/GHSA-cc4g-m3g7-xmw8
2	https://github.com/decidim/decidim/commit/8a18c8b1ee85a1b35ee0d8d5893f218695d15637

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-79	クロスサイト・スクリプティング（XSS）	https://cwe.mitre.org/data/definitions/79.html